Date: Tue, 17 Aug 2004 11:55:37 -0700 From: Mark Boolootian <booloo@ucsc.edu> To: freebsd-stable@freebsd.org Cc: desjardins@canada.com Subject: key_verify failed for server_host_key solution Message-ID: <20040817185537.GA6694@root.ucsc.edu>
next in thread | raw e-mail | index | archive | help
Folks, I found that SSH broke after an upgrade to 4.10 stable. The problem I saw was the same one reported by Daren Desjardins back in March. The symptom is a client failing to establish a connection with the complaint: key_verify failed for server_host_key The culprit turns out to be a problem in libcrypto that is tickled by too aggressive optimization settings. When building 4.10, my make.conf included: CFLAGS= -O -pipe -funroll-loops -ffast-math COPTFLAGS= -O -pipe -funroll-loops -ffast-math By removing both the unroll-loops and fast-math optimizations, and rebuilding libcrypto, the problem disappears. For anyone unfamiliar with rebuilding libcrypto, the following should do the job: cd /usr/src/secure/lib/libcrypto make clean make obj && make depend && make all install mb
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040817185537.GA6694>